Two Questions:
1. I have a main office and 2 branch offices. At one branch I have an ASG110 with a site2site to the main ASG220. The ASG110 branch is allowed access to 4 subnets at the main. 3 subnets SA's are green and 1 red as expected since the 4th is not currently up, so the top button shows yellow, again as expected.
I am adding the second brance with an ASG120. The 120 is allowed access to 2 of the subnets at main. The SA's show yellow? I can ping accross. I think they are configured just like the 110 but something must be different. The Green SA's on the 110 show IKE: Auth RSA / ENC_AES_CBC_256 / HASH MD5 / LIFETIME 7800s /DPD
The Yellow SA's on the 120 read the same except / HASH /LIFETIME 7800s
No MD5 or DPD. The policies are default, they have not been edited. WHat is this telling me?
Question 2: Since the 110 has a vpn to the 220, can I just add that site as a subnet on the 120? or do I have to have a separate vpn to that site?
This thread was automatically locked due to age.
